September 7, 2017

All CAs must support CAA checking

Certification Authority Authorization (CAA) is a control to restrict which CAs can issue certificates for a particular domain name. By configuring the DNS CAA record, Domain owners can specify which Certification Authorities are authorized to issue certificates on behalf of that domain name.

- If no CAA record is present, any CA is allowed to issue certificates for that domain name.- If a CAA record is present, only the CAs listed in the record(s) are allowed to issue certificates for that domain.

August - December 2017

GlobalSign defaults all OV SSL Certificates to use CT

GlobalSign currently supports CT for OV certificates for those customers that request this. In the Fall/Winter time, GlobalSign will change all accounts to use CT by default and those customers that want to opt-out will be able to do so. At this point all GlobalSign SSL Certificates will be compliant with the Google CT policy unless a GlobalSign Account has opted out of CT.

Contact

Follow Us

GlobalSign is the leading provider of trusted identity and security solutions enabling businesses, large enterprises, cloud service providers and IoT innovators around the world to secure online communications, manage millions of verified digital identities and automate authentication and encryption. Its high-scale Public Key Infrastructure (PKI) and identity solutions support the billions of services, devices, people and things comprising the Internet of Everything (IoE).